CVE-2013-0411

Unspecified vulnerability in Oracle Sun Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via vectors related to RBAC Configuration.

CVSS v2.0 5.9 MEDIUM

5.9^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:H/Au:M/C:C/I:C/A:C

Exploitability : 1.2 / Impact : 10.0

Access Vector LOCAL

Access Complexity HIGH

Authentication MULTIPLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150	Broken Link
http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html	Patch Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18529
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150	Broken Link
http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html	Patch Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18529

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:sunos:5.8:::::::*
	cpe:2.3:o:sun:sunos:5.9:::::::*
	cpe:2.3:o:sun:sunos:5.10:::::::*

History

21 Nov 2024, 01:47

Type	Values Removed	Values Added
References	~~() http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 - Broken Link~~	() http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 - Broken Link
References	~~() http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html - Patch, Vendor Advisory~~	() http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html - Patch, Vendor Advisory
References	~~() https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18529 -~~	() https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18529 -

Information

Published : 2013-04-17 12:14

Updated : 2024-11-21 01:47

NVD link : CVE-2013-0411

Mitre link : CVE-2013-0411

CVE.ORG link : CVE-2013-0411

JSON object : View

Products Affected

sun

sunos

CWE

NVD-CWE-noinfo

{"id": "CVE-2013-0411", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:M/C:C/I:C/A:C", "authentication": "MULTIPLE", "integrityImpact": "COMPLETE", "accessComplexity": "HIGH", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 1.2, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-04-17T12:14:51.567", "references": [{"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "tags": ["Broken Link"], "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html", "tags": ["Patch", "Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18529", "source": "secalert_us@oracle.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18529", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Sun Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via vectors related to RBAC Configuration."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Oracle Sun Solaris 8, 9, y 10 permite a usuarios locales afectar la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos relacionados con RBAC Configuration."}], "lastModified": "2024-11-21T01:47:29.260", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2475113-CFE4-41C8-A86F-F2DA6548D224"}, {"criteria": "cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1E585DC-FC74-4BB0-96B7-C00B6DB610DF"}, {"criteria": "cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E75493D0-F060-4CBA-8AB0-C4FE8B2A8C9B"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}